Re: [PATCH 1/3] crypto: ecdh - fix 'ecdh_init'

From: Stephan Mueller
Date: Fri May 21 2021 - 05:43:05 EST

Next message: zhaoxiao: "[PATCH 5/5] mips: dts: loongson: fix DTC unit name warnings"
Previous message: Steven Price: "Re: [PATCH v12 7/8] KVM: arm64: ioctl to fetch/store tags in a guest"
In reply to: Herbert Xu: "Re: [PATCH 1/3] crypto: ecdh - fix 'ecdh_init'"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Am Freitag, dem 21.05.2021 um 16:13 +0800 schrieb Herbert Xu:
> On Fri, May 21, 2021 at 04:08:10PM +0800, Hui Tang wrote:
>
>
> Stephan, can you confirm that both ecdh-nist-p192 and ecdsa-nist-p192
> should be disabled in FIPS mode?

Confirmed with the following caveat: sigver is allowed due to legacy
considerations. Siggen / ECDH is only allowed for curves P-224 and higher.

As we introduce ECDSA today, I would not consider a legacy mode and thus
disable P-192.

Ciao
Stephan

Next message: zhaoxiao: "[PATCH 5/5] mips: dts: loongson: fix DTC unit name warnings"
Previous message: Steven Price: "Re: [PATCH v12 7/8] KVM: arm64: ioctl to fetch/store tags in a guest"
In reply to: Herbert Xu: "Re: [PATCH 1/3] crypto: ecdh - fix 'ecdh_init'"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]